$ rpki-client -vvf rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.mft File: XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.mft (raw, json) Hash identifier: wJotlVpnCp9wyhkQWVWbwCf4BtVS2n5CpyMccmKDKZ0= Subject key identifier: D7:2C:F0:B0:CC:CC:40:2E:74:47:7C:86:49:AA:79:73:BC:AA:D4:44 Authority key identifier: 5F:1C:53:4A:EE:FF:4E:38:0C:E5:A0:9A:10:84:BF:8F:57:09:ED:08 Certificate issuer: /CN=A91A467D/serialNumber=5F1C534AEEFF4E380CE5A09A1084BF8F5709ED08 Certificate serial: 0AE1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.mft Manifest number: 0ADA Signing time: Mon 12 May 2025 19:17:09 +0000 Manifest this update: Mon 12 May 2025 19:17:09 +0000 Manifest next update: Mon 19 May 2025 19:17:09 +0000 Files and hashes: 1: XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.crl (hash: 1NwtcKkzk7oJzObXVlR2eNC8HQjHnS3lWnBLmZsUjds=) 2: 43272DE249AA11EABABC8610C4F9AE02.roa (hash: ArNuSAGS500F2Au8BkBemb4Fqw5PMgC4H5tbUjnLNK4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.crl rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 19:17:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2785 (0xae1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A467D, serialNumber=5F1C534AEEFF4E380CE5A09A1084BF8F5709ED08 Validity Not Before: May 12 19:17:09 2025 GMT Not After : May 19 19:17:09 2025 GMT Subject: CN=68224935-3973 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:b9:6a:e6:e3:12:07:51:8f:b7:c4:73:32:f3: d5:ef:56:94:be:80:81:d5:11:69:4e:28:2e:54:01: a7:fd:9b:ef:a9:c2:fe:2a:9b:cd:f3:6a:a8:ee:11: 85:c5:05:57:be:70:61:ab:ce:ed:ce:ac:71:46:0f: 75:42:3b:bc:47:27:3e:a3:13:4f:7e:de:0f:27:53: fa:96:d9:e3:12:71:69:e5:45:fe:80:69:e8:be:0a: 53:4e:cf:33:09:d4:1c:65:35:87:76:49:07:aa:b2: 09:79:4b:4c:e3:07:80:7b:16:7d:d9:2a:01:be:2e: 29:ba:9a:b9:94:34:2a:f6:12:5e:7d:a4:b1:6d:2e: c3:7d:8c:8b:93:6a:75:3f:c7:b2:45:dc:f9:31:83: f7:51:f0:41:51:57:f9:e7:53:bf:b6:36:dd:57:d5: 1a:66:5c:9f:a4:4a:95:05:29:74:dc:41:7f:c4:af: 77:e6:e3:c5:65:2e:04:b8:12:02:b5:99:38:5c:c2: bf:e2:33:dc:b0:b1:dc:f2:d5:82:e8:02:61:36:6d: b8:5c:9c:3a:d7:28:25:00:a8:34:9e:1c:a4:9d:a7: 0d:61:27:70:d6:83:4e:b6:e2:eb:a4:dd:2a:43:b4: 4f:49:a0:3e:48:b3:73:b7:2c:b1:aa:51:9b:9e:50: f1:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:2C:F0:B0:CC:CC:40:2E:74:47:7C:86:49:AA:79:73:BC:AA:D4:44 X509v3 Authority Key Identifier: keyid:5F:1C:53:4A:EE:FF:4E:38:0C:E5:A0:9A:10:84:BF:8F:57:09:ED:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:84:23:a5:cf:b4:5c:3a:af:a2:68:2e:66:bc:eb:83:89:80: bf:9f:26:cf:41:49:a9:aa:30:bc:6f:f6:db:17:4e:7c:5c:0c: 6e:21:07:be:b9:9f:03:38:ad:67:c4:a7:74:39:d1:cd:ce:0f: 65:93:16:3b:ee:2d:f7:95:01:54:38:73:9e:22:59:49:e7:33: aa:b4:ae:5f:bb:fd:99:18:92:17:7b:70:7f:e4:b1:cb:d8:0e: c3:f9:48:02:39:e3:c1:4e:84:05:9f:3b:0b:dd:1a:9a:b5:ac: a2:b2:98:a1:99:96:6a:58:54:23:cf:b7:32:a0:46:ff:7c:e1: d5:5f:6b:be:ae:a3:d9:78:2b:bc:66:7d:4a:1b:1e:24:4b:e5: 8f:1b:02:a6:d8:df:03:27:33:c5:e6:8e:d1:e2:2f:f2:5e:1c: 7e:7c:c1:e4:01:68:e6:df:ea:3e:b7:36:66:1d:64:d1:52:35: 1e:79:6d:6e:8f:2c:ed:25:aa:17:2a:05:0a:87:ae:1d:38:f6: a2:24:9e:35:5d:d3:9c:b7:36:6a:82:fd:e6:f2:7a:7b:a9:29: 19:d3:38:64:5f:a0:01:50:e4:35:79:bb:8e:39:c5:18:65:f5: f4:1c:fb:bb:08:95:e2:b9:1b:b0:32:9a:46:07:1c:e0:57:de: 8f:dd:94:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCuEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ2N0QxMTAvBgNVBAUTKDVGMUM1MzRBRUVGRjRFMzgwQ0U1QTA5QTEwODRCRjhG NTcwOUVEMDgwHhcNMjUwNTEyMTkxNzA5WhcNMjUwNTE5MTkxNzA5WjAYMRYwFAYD VQQDEw02ODIyNDkzNS0zOTczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1rlq5uMSB1GPt8RzMvPV71aUvoCB1RFpTiguVAGn/ZvvqcL+KpvN82qo7hGF xQVXvnBhq87tzqxxRg91Qju8Ryc+oxNPft4PJ1P6ltnjEnFp5UX+gGnovgpTTs8z CdQcZTWHdkkHqrIJeUtM4weAexZ92SoBvi4pupq5lDQq9hJefaSxbS7DfYyLk2p1 P8eyRdz5MYP3UfBBUVf551O/tjbdV9UaZlyfpEqVBSl03EF/xK935uPFZS4EuBIC tZk4XMK/4jPcsLHc8tWC6AJhNm24XJw61yglAKg0nhyknacNYSdw1oNOtuLrpN0q Q7RPSaA+SLNztyyxqlGbnlDxUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNcs8LDM zEAudEd8hkmqeXO8qtREMB8GA1UdIwQYMBaAFF8cU0ru/044DOWgmhCEv49XCe0I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDY3RC84NDhFN0QxODQ5 QTkxMUVBQTZGREQzMEZDNEY5QUUwMi9YeHhUU3U3X1RqZ001YUNhRUlTX2oxY0o3 UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h4eFRTdTdfVGpnTTVhQ2FFSVNfajFjSjdRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDY3RC84NDhFN0QxODQ5QTkxMUVBQTZGREQzMEZDNEY5QUUwMi9YeHhUU3U3X1Rq Z001YUNhRUlTX2oxY0o3UWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJhCOlz7RcOq+iaC5mvOuDiYC/nybPQUmpqjC8b/bbF058XAxuIQe+ uZ8DOK1nxKd0OdHNzg9lkxY77i33lQFUOHOeIllJ5zOqtK5fu/2ZGJIXe3B/5LHL 2A7D+UgCOePBToQFnzsL3RqatayispihmZZqWFQjz7cyoEb/fOHVX2u+rqPZeCu8 Zn1KGx4kS+WPGwKm2N8DJzPF5o7R4i/yXhx+fMHkAWjm3+o+tzZmHWTRUjUeeW1u jyztJaoXKgUKh64dOPaiJJ41XdOctzZqgv3m8np7qSkZ0zhkX6ABUOQ1ebuOOcUY ZfX0HPu7CJXiuRuwMppGBxzgV96P3ZQj -----END CERTIFICATE-----Generated at Tue May 13 21:43:56 2025 by rpki-client